Outline for March 11, 1999

  1. Greetings and felicitations!
  2. Network Security
    1. Same issues as for general computer security; only mechanisms different
    2. Typically don't rely on network hardware to protect things
    3. Must use cryptography
  3. Network Environment
    1. Quick review of ISO/OSI model
    2. Link v. end-to-end encryption
  4. Security Threats and Countermeasures
    1. snooping
    2. modification
    3. masquerading
    4. replay
    5. delay
    6. denial of service
    7. repudiation of origin
    8. denial of receipt
  5. Example Design: Electronic Mail
    1. Review desired security services
    2. Basis
    3. PEM protocol
    4. Certificate-based key management vs. secret key management
    5. Comparison to PGP
  6. Example Existing Protocol: NTP v 2
    1. Protocol to synchronize clocks on the Internet
    2. Primary time servers: synced to an external time system (eg, atomic clocks)
    3. Go through cloud hierarchy (and cohorts), stratum layer (distance from primary) , synchronization
    4. Association modes: client (sends message to peer, can reset time), server (replies to sent message), broadcast (send out periodic messages); higher up, symmetric active and symmetric passive: association periodically sends out broadcast messages; on arrival, symmetric passive association is created, looks at source; if source at higher stratum, reply and terminate; otherwise, reply, and source synchronizes itself to peer. Also, allow control messages.
    5. Selection of source peer, smoothing of data: retains last 8 values of (delay, clock offset), and chooses point with lowest delay, and sets dispersion. Best source chosen from the sets (one per possible source).
    6. Packet receipt, sending: on receipt, if connections compatible, checks not a duplicate by looking at transmit times, checks the last packet received by peer was the last one sent; on failure, set sanity check but continue. Update association to reflect data in newly-0arrived packet; check peer clock, stratum level, validate 2-way communication. If sanity check set, exit. Else estimate delay, clock offset, dispersion, and update local clock.
    7. Delay compensation: statistical in nature, calculates delay and clock offset relative to peer
    8. Access Control: trusted (can synchronize to), friendly (can synchronize), all others (ignore) -- relies on unauthenticated source information in packet
    9. Authentication: optional, uses pairwise secret keys. Authenticator excluded from integrity checking; no key distribution mechanism.
  7. asquerade
    1. Send packets with bogus source; peer determined by source and destination.
    2. Effect: if fake host known to victim and can synchronize clock, may be ignored due to sample processing and selection operations.
    3. Can cause offsets, delays to alter gradually; victim's clocks will drift
    4. If unknown to victim and can become clock source, can flood with 8 messages and assuming victim gets no others, can now control what is discarded; or, claim low stratum number. Either way, attacker tends to become source
    5. See request, send response before legitimate response; real one discatded
  8. Analysis of NTP: Modification
    1. Alter a message to cause recipient to resynchronize, or to break an association
    2. Look at allgorithm; variables reset before packet alteration acted upon
    3. Can alter packet precision, time of sending, and time of last message reception; all others cause discard before changing time (but may change association parameters)
    4. precision: can increase round-trip delay or decrease it (to make it more likely impersonated host will be new time source)
    5. Other two: used to adjust clock offset and delay, so can affect choice of source and frequency of contact
    6. DoS: version, association mode deny services
    7. stratum alters stratum of peer, making it more likely to be a clock source
    8. poll: how often peer is polled (certain limits)
    9. distance: affects delay that victim percieves from primay, and hence affects clock source selection
  9. Replay
    1. To cause recipient to resynchronize, or to disable an association
    2. Alternate 2 recorded packets; either they get tossed (new source) or victim isolated
    3. Can set clock backwards
  10. Denial of Service
    1. Clock runs on its own power; can cause large errors
  11. Fixes
    1. External
    2. Internal: use authentication and include the key index (authenticator). Change peer variables only after authenticating packets. Disallow clocks being set backwards.


You can get this document in ASCII text, Framemaker+SGML version 5.5, PDF (for Acrobat 3.0 or later), or Postscript.
Send email to [email protected].

Department of Computer Science
University of California at Davis
Davis, CA 95616-8562



Page last modified on 3/18/99